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Gjnnnnnnnnnnnnn (- 》 3) 
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DDDDDDDD 
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□□ DDDDDDDDD 
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FireWii i-innnnnnnnnnnn ( -》 句 

FireWii i-mnnnnnnnnnnnnnnnnn (- 》 7) 


Fi revel IDDDDDDDDD 
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□ □ NG with 

DDDDDDDD 

DDDDDDDD 


DDDDDDDDDDDDD 
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Configuring Licenses... 


Features 


Host Expiration 

Note : The recommended way of managing licenses is using SmartUpdate. 
cpconfig can be used to manage local licenses only on this machine. 

Do you want to add licenses (y/n) [n] ? y . 

Do you want to add licenses [M]anually or [F]etch from rile : m .. 

IP Address : 202 . 247 . 5.126 
Expiration Date : 

Signature Key : 

SKU/Features : 

License was added successfully 
could not put license in running module : Invalid argument 

Conriguring Administrators... 


No VPN-1 & FireWall-1 Administrators are currently 
defined for this SmartCenter Server. 

Do you want to add administrators (y/n) [y] ? y . 

Administrator name : fws-admin 
Password : 

Verify Password: 

Permissions for all products (Read/[W]rite All, [ 民 ] ead Only All, 
LC]ustomized) w 

Permission to Manage Administrators ([Y]es, [N]o) y 

Administrator fws-admin was added successfully and has 
Read/Write Permission for all products with Permission to Manage 
Administrators 

Add another one (y/n) [n] ? n . 

















Configuring GUI Clients... 


GUI Clients are trusted hosts from which 

Administrators are allowed to log on to this SmartCenter Server 
using 师 indows/X-Motif GUI. 


No GUI Clients defined 

Do you want to add a GUI Client (y/n) [y] ? y■ 


You 


can add GUI Clients using any of the following formats : 
IP address. 

Machine name. 

"Any" - Any IP without restriction. 

A range of addresses, for example 1.2.3.4-1.2.3.40 
Wild cards - for example 1,2.3.* or checkpoint.com 


Please enter the list of hosts that will be GUI Clients. 

Enter GUI Client one per line, terminating with CTRL-D or your EOF 
character ， 

192 . 168 . 1.99 . 

Is this correct (y/n) [y] ? y . 

Configuring Random Pool.., 

You are now asked to perform a short random keystroke session. 

The random data collected in this session will be used in 
various cryptographic operations. 


Please enter random text containing at least six different 
characters. You will see the '* * symbol after keystrokes that 
are too fast or too similar to preceding keystrokes. These 
keystrokes will be ignored. 


Please keep typing until you hear the beep and the bar is full. 


Thank you. 


① 


感 

感 


③ が : 《□□□□□□□□□□□□□□□□□□□□□□□□□□□□ 

② □□□□□□□□□□□□□□□□□□□□□□□□□□IPO □□□□□□□凹 

□ □□1 の □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□ か 1> が 0 

DDDDDDDDD 

③ □□□□□□□□□□□ 凹バ : 《□□□□□ 

® DDDDDDDDDDDDDDDDDDDDDD 














Configuring Certificate Authority. ， . 


The Internal CA will now be initialized 
with the following name : fws.nec.co.jp 

Initializing the Internal CA...(may take several minutes) 

Internal Certificate Authority created successfully 
Certificate was created successfully 
Certificate Authority initialization ended successfully 

Check Point product Trial Period will expire in 15 days. 

Until then, you will be able to use the complete Check Point Product 
Suite. 

Trying to contact Certificate Authority. It might take a while... 
fws.nec.co.jp was successfully set to the Internal CA 

Done 


Conriguring Certiricate's Fingerprint... 


The following text is the fingerprint of this SmartCenter Server : 
ADD OX GA 师 K MUM LONG RISK CARD FERN LILY KEY JOKE FLOC 

Do you want to save it to a rile? (y/n) [n] ? n . 

generating INSPECT code for GUI Clients 
initial—management: 

Compiled OK. 

Hardening OS Security: Initial policy will be applied 
until the first policy is installed 

In order to complete the installation 
you must reboot the machine. 

Do you want to reboot? (y/n) [y] ? y . 


① QUDDDDDDDDDDDDDDDDDDFireWII-lODDDDDDDDDDDDDDDDDDD 
DDDDDDDD 

□ □□□□□□□□□□□□□□□ 凹バ : =0 □□□□□□□□□□□ 刪 □□□□□□ 

感 DDDDDDDDDD 

□ □□□□□ Fi reWiI I-IODDDDDDDDDDDDDDDDDDSSI-D VIMD DDDDDDDDD 

□ □ □ 
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□ □□□□□□□□□□□□□□□□□ Srwt な shboarcD DDDDDDDDDDDDDDDDDDDDD 
DDDDDDDDDDDDDDDD 

DDDDDDDDDDDDDDD Srwt な shboarcD DDDDDDDDDDDDDDDD DDDDDDDD 
DDDDDDDDDDD 

• □□□□□□□□□□□□: Wndov^s XP hbn^ professi onal 

Wndov® 98SE/|\^ 

Wndov® IMF 4. 0 Vttrkstati on( SP6a) 

Wndov® IMF 4. 0 Server(SP6a) 

Wndovc 2000 Professi onal (SPIO SP2D SP3D SP4) 

Wndov® 2000 Server(SP10 SP2D SPBQ SP4) 

Wndov® 2000 M/anced Server(SPIQ SP2n SP3D SP4) 

Wndov® 2003 Server 

• DDDDDDDDD ： 100 W □ 

• □ 口8仰 □ 

□ □ □ □ 200¢ 3D □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 


aJDDDDDDDDDDDDD (. の） 

DDDDDDDDD Snart 店 shboarcO DDDDDDDDDDDDDDD Snart な shboarcO □□□□□□□ 
□ □□□□□□□□□□□ SnartVi ew Tracks の DDDDDDDDDDDDDDDD SnartVi ewStatusD 
DDDDDDDDDDD 

1. □□□□□□□の ROME □ □ □ □ Check Poi nt l\bxt 姑 lerat i on □の ROME D D D D D D 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□□□□□□□□□□¥ wapper ¥ w ndowQ □□□□□□□ dena)32. ex 田 Q 
DDDDDDDDD 

Wl con®D DDDDDDDDD 

2. □ INfextD DDDDDDDD 
DDDDDDDDDDDDDDD 

3. DDDDDDDDDDDDDDDD YesD DDDDDDDD 

□ □□□□□□□□□□□凹 

□ I nstal I ati on Cpti onsQ □□□□□□□□ □ 




4. DDDDDDDDD 

□ □□□□□□□□□□ [Check Poi nt Enter pri se/Pro]D [Check Poi nt Express] D □ □ □ □ [l\bct] 

□ □□□□□□□□1 nstal lation QtionsD D D D D D D D D D 
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9. [SnartCfeshboardlD [SnartVi ewTracker ]〇 〇 〇 [SnartVi ewStatuslD □□□□□□ [ l\bxt]n □ □ □ 

D D D D 

DDDDDDDDDDDDDD 



7. □□□□□□□□ Product sD □□□□□□□□□ [Snart Consol e]D DDDDDDDDDDDDDD 
陶の□□□□□凹 

Choose test i nat i on Locati onQ □□□□□□□□□ 
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DDDDDDDDDDDDDDDDDDDDD Traditional Mxi^ DDDDDDDDDDDDD 


14. Tradi ti onal nrode □ □ □ 

Snart 店 shboarcD Properties] D VPN 

□ □□□□□□田 Tradi ti onal nrode to al I new Securi ty Pol i ci es: Setup wth Encryption 
Rules .□□□□ 凹 [ ひの□□□□□凹 



巧 . □□□□□□□□[ Fi I e]-[l\bv\3D □ □ □ □ Pol i cy Package l\bn®a □ □ □ □ □ 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
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Fi revel I DDDDDDDDDDDDDDDDDD SSHD DDDDDDDDFi reWiI I-ID D D D 
DDDDDDDDDDDDD Fi rev®l I D D D D SSHD DDDDDDDDDDDDDDDDDD 
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□ □□□□□□□□□ (SShD D )(. 》 4) 

□ □□□□□□□□□SSHD □□□□□□□□□□□□□□□□□□□□□□江 FDDD 

□ □ 没の □□□□□□□□□□□□□□□□ 岡□□□□□□□□□(□□□□□凹 

□ □)□□□□□□□□□□□□□□□□□□□□ Firev\al I □□□ 岡□□□□□□□凹 

□ □□□□□□□□□□□□□□□□□□□□□□□岡□□□□□□□□□□□凹 

Fi rewBl I □□□□□□□□凹 

• SShDDDDDDDDDDD 

• 岡 □ □ □ 

□□□□□□□□□□□□□□□ 

DDDDDDDDDDDDDDDDDDDDDD 

• D D D D D D の RCM 

• Check Poi nt l\bxt を nerat i on( l\G w t h AppI i cat i on I ntel I i gence R55) 

• DDDDDDDDDDDD 

• DDDDDDDDDDDD 

• DDDDDDDDDD(DD) 



restore clp.conf ... 
restore .http... 
restore .ssh. ， . 
restore completed. 


After turned off FDD access light, Press enter key. 

# fwsetup —i /opt/necfws/etc/fws.ini 

: □□□□□□□□□□□□□□□□□□□□□□□□□□ 

<Enter 或 □□□□□□□□□□□□□□□□□□□□□□ 


nnnnnnnnn 


# shutdown —r 




□ □□□□□□□□ (- 》 5) 

1. □□□□□□crc □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
の ROME □□□□□□□□□□の明 □□□□凹 

□ □□□□□□□□ の阀□□□□□□□□□□□□□凹 

□ □□□□□□□ 1 の□□□□□凹 

DDDDDDDDDDDDD の明 □□□□□□□□□□□ の明□□□□□凹 
□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

2. □□□□凹の ROME DDDDDDDDDDDDDDDDDDDDDD 暖の DDDDDDDDD 
D CFFD D D D 

3. DDDDDDDDDDDDDDDDD 暖 の DDDDDDDDDDOSDDDD 
□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ □□□□3D □□□□□□□□□□□□□□□□□没の □□□□□□□□ Fi revel ■□□□□□□口 

□ □ 

4. □□□□□□□□□□□□□□□□□□□□□□□□□没の田□□□□□□□□田 DPasswrcCD 
DDDDDDDDDDD 

5. 《□□□□□□□□□□□□□□□□□□□□い 
DDDDDDDDDDDDDDDDDD 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 


# fwrestore —i 

Please insert backup r 丄 oppy disk. (#1) 

Press enter key. □□□□□□□□□□□□□□□回 

^ f . . <Ente 「 或 n □ □ □ 

restore fws.ini ... 


□ 

□ 

□ 

□ 

□ 

□ 

□ 

□ 

□ 

□ 

□ D 

□ D 

□ D 

□ D 

□ D 

□ □ 


《□□□□□□□□□□□□□□□い 

□ □□□2. □□□□□□□□□□□□ - □□□□□□□□□□□□□□□□□□□□□□□□凹 
DDDDDDDDD 




6. □□□□ の ROyo noon Check Poi nt l\bxt Generati onQ l\Gwth AppI i cati on I ntel I i gence R5 亞 
D CDROyD D D D D D Fi re\ASI I -1 〇 DDDDDDDDDDDDDDDDD 


# mount /dev/cdrom 

# cd /mnt/cdrom/linux/ 

# rpm -i ./CPshared_50/CPshrd-R55—00.i386.rpm 

# rpm —i ./CPFirewalll-50/CPfwl-R55-00.i386.rpm 

# cd / 

# umount /dev/cdrom 


7 . の ROME □□□□□の ROME □□□□□□□□□凹 


# shutdown -r now 


8. cpconfi の □ □ □ □ Fi reWiI I - の□□□□凹 

cpconfi の □□□□□□□□ 2. □□□□□□□□□□□□-□ FireWI I - の □□□□□□□□□□□ 
DDDDDDDDDD 


# cpconfig 


Do you want to reboot? (y/n) [y] ? y 


9. DDDDDDDDDDD 

《□□□□□□□□□□□□□□□□□□□□□□□□□い 
□ □□□□□□□□□□□ Fi reWiI I - の□□□□凹 



■fnter^ DDDDDDDDDDDDDDDDDDDDDD 

《□□□□□□□□□□□□□□□い 
Snart な shboar の DDDDDDDDDDDDDD 


10. Snart な shboar 生 ] DDDDDDDDDDDDDD 

□ □□ □ 

CDFOC □ □ □ □ Check Poi nt ISbxt 店 nerati onQ NSwith か pi i cat i on I ntel I i gence 巧亞 □ の RCM 

□ □□□□□□□□□□ Firewal I □□□□□□□□□□□□□□□□□□凹 
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□□□□□2□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
□ □□□□□□□□□□□□□□□□□□□□□□□凹 Express 5800 /FWiOO□ □ □ FVSOO□ □ □ 1 □ 
□□□□□□□□□□□□□□□□□□□□□□□凹 

DDDDDDDDDDDD ： Wndov® NT 4.0 Server (SP6a)D 

Wndov® 2000 Server (SP の SP2a SPBO SP4)D 

Wndov\s 2000 M/anced Server (SP の SP2n SP30 SP4)Q 

Vi/ndov® 2003 Server 〇 

Solarise / UtraSPWC (32-bitQ 种 bit)Q 

Sol aris9 / U traSPWC ( 种 bi !;)□ 

Redhfet Li nux 7. 0 (kernel versi on 2. 2. 16 日 2. 2. 17[] 2. 2.19) 

Redhfet Li nux 7. 2 (kernel versi on 2. 4. 9 - 31) 

Red 怕 t Li nux 7. 3 (kernel versi on 2. 4.18 - 5Q 2. 4.18 - 27 〇 

2. 4. 20 ) 

Vi/ndov® or Li nux 

□ □□□ 凹： 

Sol ari s 

□ □□□ 凹： 


3001 D 

口 □ 


300W □ 

口 □ 


-》□ □ □ □ 200fl 3D □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 




Fi reWiI I- の □□□□□□□□□□□□□□□□ □(. 》 7) 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
□ □□□□□□□□□□□□□□□□□□□□击□□ス □□□□□□□□□□□□ - DFi re 割 11 - の 

DDDDDDDDDDDDDDDDDDDDD 


/ \ 
# cpconfig 

Welcome to Check Point Configuration Program 


Please read the following license agreement. 
Hit ,ENTER* to continue. . . .. 


Do you accept all the terms of this license agreement (y/n) ? y ... 

Please select one of the following options : 

Check Point Enterprise/Pro - for headquarters and branch offices. 
Check Point Express - for medium—sized businesses. 


(1) Check Point Enterprise/Pro. 

(2) Check Point Express. 

Enter your selection {1-2 / a-abort) L 丄 ]: 丄 
Select installation type: 


(1) Stand Alone - install VPN-1 Pro Gateway and SmartCenter Enterprise. 

(2) Distributed - install VPN - 丄 Pro Gateway, SmartCenter and/or Log Server. 

Enter your selection {1-2 / a-abort)[1]: 2 . 

\_ J 


① 


③ 


③ 


④ 


① Fi reWiI I - の□□□□□□□□□□□□□□□□□□□凹 
③ □□□□□□□□□凹バ: 《□□□□□ 

③ DDDDDDDDDDDDDDDD 
□□□□□□□□□□□□□□□□□□□□□□□□□凹 

④ DDDDDDDDDDDDDDDDDDD 

□ □□□□□□□□□ 2□□□□□□□□□□□□□□凹 
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Fi revel I DDDDDDDDD ■ 


Fi reWill-10 DDDDDDDDDD けの 

□ □□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□□□ - □ 円 re 仰 11 - の□□□□□凹 
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① 


..③ 


③ 
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® Fi reVttI I - の□□□□□□□□□□□□□□□□□□□凹 
@ □□□□□□□□□□□ バ：《 □□□凹 
® DDDDDDDDDDDDDDDD 

□□□□□□□□□□□□□□□□□□□□□□□□□凹 

® DDDDDDDDDDDDDDDDDDD 

□ □□□□□□□□□ 2 □□□□□□□□□□□□□□凹 


# cpconfig 

Welcome to Check Point Configuration Program 


Please read the following license agreement. 
Hit ,ENTER* to continue... . 


Do you accept all the terms of this license agreement (y/n) ? y … 

Please select one of the following options : 

Check Point Enterprise/Pro - for headquarters and branch offices. 
Check Point Express - for medium—sized businesses. 


(1) Check Point Enterprise/Pro. 

(2) Check Point Express. 

Enter your selection い - 2/a-3bort)[1]:i . 

Select installation type: 

(1) Stand Alone - install VPN - 丄 Pro Gateway and SmartCenter Enterprise. 

(2) Distributed - install VPN-1 Pro Gateway, SmartCenter and/or Log Server. 

Enter your selection (丄 一 2/a—abort)[1]: 2 . 

N - J 













Select installation type: 


VPN-1 Pro Gateway. 

Enterprise SmartCenter. 

Enterprise SmartCenter and VPN-1 Pro Gateway. 
Enterprise Log Server. 

VPN-1 Pro Gateway and Enterprise Log Server. 


(D ) 


IP forwarding disabled 

Hardening OS Security : IP forwarding will be disabled during boot. 
Generating default filter 
Default Filter installed 

Hardening OS Security : Default Filter will be applied during boot. 
This program will guide you through several steps where you 
will define your VPN-1 & FireWall-1 configuration. 

At any later time, you can reconfigure these parameters by 
running cpconfig 


Is this a Dynamically Assigned IP Address Module installation ? (y/n) [n] ?.. 

Would you like to install a Check Point clustering product {CPHA, CPLS or State 
Synchronization)? (y/n) [n] ? y. 


Enter your selection (1-5/a-abort)[1]:1 


① DDDDDDDDDDDDDDDDDDD 
DIODDDDDDDDDDDDDDD 

③ Cynaniical I y /^si gned I P Address Mxiul eQDDDDDDDDDDDDDDDDDDDD <Enter 或 □ 
D D D D D D 

③ Check Poi rt cl usteri ng prcxJuctD □□□□□□□□□□□□□□□□□□□□ が或 □□□□□ 
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(□) 


Configuring Secure Internal Communication... 


The Secure Internal Communication is used for authentication between 
Check Point components 

Trust State: Uninitialized — 

Enter Activation Key : . 

Again Activation Key : 

The Secure Internal Communication was successfully initialized 

initial—module: 

Compiled OK. 

Hardening OS Security : Initial policy will be applied 
until the first policy is installed 

In order to complete the installation 
you must reboot the machine. 

Do you want to reboot? (y/n) [y] ? y. 


® Fi reWiI I - の □ □ □ □ □ Fi revel I □□□□□□□□□□□□□□□□□□□□□□□凹 
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1. の □ Fi revel I □□□□□□□□□□□凹 


-Vi evCbj ectTreeD D CheckPoi ntQ □□□□□□□□□□□□□□ 

□ l\bw Check Poi nt □一 □ 倒 ; eveyD D D D D D D D 

-□□□□□□: 姑 evay 

□ □ : fv\ElO fvs2 

□ □ : I P A±lress D D 円 reWI I-!□□□□□□□□□□□□□□□□ IP □□□□凹 
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□ □□□□□ Fi reWiI I-IDDDDDD Fi rev®l I DDDDDDDDDDDDDDDDDDDD 
姑 leral □□□ 凹 Oxinraini cati on. ..□□□□□□□□ Fi reWiI I-IDDDDDDDDDDDDD 
DDDDDDDDDDDDDDDDDDD 





































- Topol ogy □□□□□□□□□□□□□□□□□□田姐 Topol ogy. ..□□□□□□□□□□□□ 
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2.DDDDDDDDDDDDDDDDDDD 

-Vi evCbj ectTree □ □ CheckPoi ntQ □□□□□□□□□□□□□□ 

□ New Check Poi nt □一 □ 届 tev\ay 口 ust 即 □□□□□□□ 

-□□□□□□: 届 tev\ay 曰 uster 

□ □ : f\flE_cl uster 

□ □ : I P A±iress DDDDDDDDDDDDD IP □□□□□□□□□□□□凹 










































3. Ouster ^ituersD □□□□□□□□□□□□□□□ Fi re 畑 11 □ □ □ □ □ □□ fv\s の fv\s2aa □ □ □ □ □ 



4. 3rd Party 伍 nf i gurationQ □□□□□□□□□□□□ 
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5. Synchroni zationQ □□□□□□□□□□□□□□□□□□□□□□□□□ 
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